SIEM
关注
分享
扫一扫
文章平均质量分 73
leeezp
Blue team security researcher, focusing on intrusion detection (traffic analysis, network and host log audit), network attack and defense, and threat traceability. In addition, he is also interested in APT attack research, vulnerability mining, security development, etc.
展开
-
splunk UTC 转北京时间
UTC 转北京时间原创 2024-01-26 15:24:57 · 114152 阅读 · 0 评论 -
windows主机日志分析(持续更新)
这篇文章记录windows事件和日志的对应关系。原创 2022-07-20 17:11:02 · 376455 阅读 · 0 评论 -
一次异常主机日志分析
一次异常主机日志分析原创 2022-07-06 14:15:05 · 2113 阅读 · 0 评论 -
安装 ewk (es+winlogbeat+kibana) 转发主机日志
自动化监控海量win主机日志。原创 2022-07-01 15:16:18 · 388823 阅读 · 0 评论 -
windows日志转发
配置windows日志事件转发详细教程原创 2022-06-17 16:59:57 · 412933 阅读 · 2 评论